-
Notifications
You must be signed in to change notification settings - Fork 9
Data Adapter REST API Reference
Juraj Ďurech edited this page May 14, 2019
·
32 revisions
PowerAuth Web Flow documentation has been moved to: https://developers.wultra.com/docs/develop/powerauth-webflow/Data-Adapter-REST-API-Reference
Please use the new developer portal to access documentation.
PowerAuth Web Flow server communicates with the Data Adapter via a REST API. This chapter defines the REST API implemented by Data Adapter and consumed by the Web Flow Server.
Following topics are covered in this chapter:
- Status codes and error handling
- Service status
- User authentication
- User information
- Decorate form data
- Form data change notification
- Operation change notification
- Send authorization SMS
- Verify authorization SMS code
You can access the generated REST API documentation in deployed Data Adapter:
http[s]://[host]:[port]/powerauth-data-adapter/swagger-ui.html
PowerAuth compliant Data Adapter uses a unified format for error response body, accompanied with an appropriate HTTP status code. Besides the HTTP error codes that application server may return regardless of server application (such as 404 when resource is not found or 503 when server is down).
All error responses that are produced by the Data Adapter should have following body:
{
"status": "ERROR",
"responseObject": {
"code": "ERROR_CODE",
"message": "ERROR_MESSAGE_I18N_KEY"
}
}Expected error messages are explained in details in individual sections.
Get a system status response, with basic information about the running application.
| Method | GET |
| Resource URI | /api/service/status |
{
"status" : "OK",
"responseObject": {
"applicationName" : "powerauth-data-adapter",
"applicationDisplayName" : "PowerAuth 2.0 Data Adapter",
"applicationEnvironment" : "",
"version": "0.20.0",
"buildTime": "2017-03-11T11:24:33Z",
"timestamp" : "2017-03-14T14:54:14Z"
}
}-
applicationName- Application name. -
applicationDisplayName- Application display name. -
applicationEnvironment- Application environment. -
version- Version of Data Adapter. -
buildTime- Time when the powerauth-data-adapter.war file was built. -
timestamp- Response timestamp.
Performs an authentication operation with username and password.
| Method | POST |
| Resource URI | /api/auth/user/authenticate |
The list of expected status codes during authentication:
| Code | Description |
|---|---|
| 200 | OK response - user was successfully authenticated |
| 400 | Invalid input - username and/or password has invalid format, unsupported authentication type |
| 401 | Authentication failed - provide reason in the message in case it is available |
| 500 | Server errors - provide error details in the message, this is only for unexpected errors |
- Headers:
Content-Type: application/json
{
"requestObject": {
"username": "userxyz",
"password": "s3cret",
"type": "BASIC",
"operationContext": {
"id": "feaec766-1b44-42cb-9872-596a4fed689f",
"name": "authorize_payment",
"data": "A1*A100CZK*Q238400856/0300**D20170629*NUtility Bill Payment - 05/2017",
"formData": {
"title": {
"id": "operation.title",
"message": "Confirm Payment"
},
"greeting": {
"id": "operation.greeting",
"message": "Hello,\nplease confirm following payment:"
},
"summary": {
"id": "operation.summary",
"message": "Hello, please confirm payment 100 CZK to account 238400856/0300."
},
"config": [],
"banners": [],
"parameters": [
{
"type": "AMOUNT",
"id": "operation.amount",
"label": "Amount",
"valueFormatType": "AMOUNT",
"formattedValue": "100.00 CZK",
"amount": 100,
"currency": "CZK",
"currencyId": "operation.currency"
},
{
"type": "KEY_VALUE",
"id": "operation.account",
"label": "To Account",
"valueFormatType": "ACCOUNT",
"formattedValue": "238400856/0300",
"value": "238400856/0300"
},
{
"type": "KEY_VALUE",
"id": "operation.dueDate",
"label": "Due Date",
"valueFormatType": "DATE",
"formattedValue": "Jun 29, 2017",
"value": "2017-06-29"
},
{
"type": "NOTE",
"id": "operation.note",
"label": "Note",
"valueFormatType": "TEXT",
"formattedValue": "Utility Bill Payment - 05/2017",
"note": "Utility Bill Payment - 05/2017"
}
],
"userInput": {}
}
}
}
}- The only currently supported authentication method is BASIC, however this field is present for future extensions of the API.
- Status Code:
200 - Headers:
Content-Type: application/json
{
"status": "OK",
"responseObject": {
"userId": "12345678"
}
}The userId value is a system-wide unique identifier identifying the user who was just authenticated.
This message should be sent when the Data Adapter receives a correct message, however the username and password combination is invalid.
- Status Code:
401 - Headers:
Content-Type: application/json
{
"status": "ERROR",
"responseObject": {
"code": "AUTHENTICATION_FAILED",
"message": "login.authenticationFailed",
"validationErrors": null,
"remainingAttempts": 2
}
}This error should be returned when username or password format is invalid - either it contains unsupported characters or it is empty or too long. This error is also used when authentication type is not supported.
- Status Code:
400 - Headers:
Content-Type: application/json
{
"status": "ERROR",
"responseObject": {
"code": "INPUT_INVALID",
"message": "login.username.empty login.password.empty",
"validationErrors": [
"login.username.empty.objectRequest.requestObject.username",
"login.username.empty.requestObject.username",
"login.username.empty.username",
"login.username.empty.java.lang.String",
"login.username.empty",
"login.password.empty.objectRequest.requestObject.password",
"login.password.empty.requestObject.password",
"login.password.empty.password",
"login.password.empty.java.lang.String",
"login.password.empty"
],
"remainingAttempts": 3
}
}For more information, see classes AuthenticationRequestValidator and DefaultExceptionResolver.
This error should be used for all unexpected errors.
- Status Code:
500 - Headers:
Content-Type: application/json
{
"status": "ERROR",
"responseObject": {
"code": "ERROR_GENERIC",
"message": "Exception occurred at ...",
"validationErrors": null,
"remainingAttempts": 3
}
}Fetches user details based on user ID.
| Method | POST |
| Resource URI | /api/auth/user/info |
The list of expected status codes:
| Code | Description |
|---|---|
| 200 | OK response - user details have been successfully retrieved |
| 400 | Invalid request - validation errors, user not found |
| 500 | Server errors - provide error details in the message, this is only for unexpected errors |
- Headers:
Content-Type: application/json
{
"requestObject": {
"id": "12345678"
}
}- Status Code:
200 - Headers:
Content-Type: application/json
{
"status": "OK",
"responseObject": {
"id":"12345678",
"givenName":"John",
"familyName":"Doe"
}
}Retrieve form data and decorate it (optional).
| Method | POST |
| Resource URI | /api/operation/formdata/decorate |
The list of expected status codes:
| Code | Description |
|---|---|
| 200 | OK response - form data was successfully decorated |
| 400 | Invalid request - user not found |
| 500 | Server errors - provide error details in the message, this is only for unexpected errors |
- Headers:
Content-Type: application/json
{
"requestObject": {
"userId": "roman",
"operationContext": {
"id": "52710b20-86ab-40d0-be07-8d59a765150d",
"name": "authorize_payment",
"data": "A1*A100CZK*Q238400856/0300**D20170629*NUtility Bill Payment - 05/2017",
"formData": {
"title": {
"id": "operation.title",
"message": "Confirm Payment"
},
"greeting": {
"id": "operation.greeting",
"message": "Hello,\nplease confirm following payment:"
},
"summary": {
"id": "operation.summary",
"message": "Hello, please confirm payment 100 CZK to account 238400856/0300."
},
"config": [],
"banners": [],
"parameters": [
{
"type": "AMOUNT",
"id": "operation.amount",
"label": "Amount",
"valueFormatType": "AMOUNT",
"formattedValue": "100.00 CZK",
"amount": 100,
"currency": "CZK",
"currencyId": "operation.currency"
},
{
"type": "KEY_VALUE",
"id": "operation.account",
"label": "To Account",
"valueFormatType": "ACCOUNT",
"formattedValue": "238400856/0300",
"value": "238400856/0300"
},
{
"type": "KEY_VALUE",
"id": "operation.dueDate",
"label": "Due Date",
"valueFormatType": "DATE",
"formattedValue": "Jun 29, 2017",
"value": "2017-06-29"
},
{
"type": "NOTE",
"id": "operation.note",
"label": "Note",
"valueFormatType": "TEXT",
"formattedValue": "Utility Bill Payment - 05/2017",
"note": "Utility Bill Payment - 05/2017"
}
],
"userInput": {
}
}
}
}
}- Status Code:
200 - Headers:
Content-Type: application/json
{
"status": "OK",
"responseObject": {
"formData": {
"title": {
"id": "operation.title",
"message": "Confirm Payment"
},
"greeting": {
"id": "operation.greeting",
"message": "Hello,\nplease confirm following payment:"
},
"summary": {
"id": "operation.summary",
"message": "Hello, please confirm payment 100 CZK to account 238400856/0300."
},
"config": [],
"banners": [],
"parameters": [
{
"type": "AMOUNT",
"id": "operation.amount",
"label": "Amount",
"valueFormatType": "AMOUNT",
"formattedValue": "100.00 CZK",
"amount": 100,
"currency": "CZK",
"currencyId": "operation.currency"
},
{
"type": "KEY_VALUE",
"id": "operation.account",
"label": "To Account",
"valueFormatType": "ACCOUNT",
"formattedValue": "238400856/0300",
"value": "238400856/0300"
},
{
"type": "KEY_VALUE",
"id": "operation.dueDate",
"label": "Due Date",
"valueFormatType": "DATE",
"formattedValue": "Jun 29, 2017",
"value": "2017-06-29"
},
{
"type": "NOTE",
"id": "operation.note",
"label": "Note",
"valueFormatType": "TEXT",
"formattedValue": "Utility Bill Payment - 05/2017",
"note": "Utility Bill Payment - 05/2017"
},
{
"type": "BANK_ACCOUNT_CHOICE",
"id": "operation.bankAccountChoice",
"label": null,
"bankAccounts": [
{
"number": "12345678/1234",
"accountId": "CZ4012340000000012345678",
"name": "Běžný účet v CZK",
"balance": 24394.52,
"currency": "CZK",
"usableForPayment": false,
"unusableForPaymentReason": null
},
{
"number": "87654321/4321",
"accountId": "CZ4043210000000087654321",
"name": "Spořící účet v CZK",
"balance": 158121.10,
"currency": "CZK",
"usableForPayment": false,
"unusableForPaymentReason": null
},
{
"number": "44444444/1111",
"accountId": "CZ4011110000000044444444",
"name": "Spořící účet v EUR",
"balance": 1.90,
"currency": "EUR",
"usableForPayment": false,
"unusableForPaymentReason": "Low account balance"
}
],
"enabled": true,
"defaultValue": "CZ4012340000000012345678"
}
],
"userInput": {
}
}
}
}Notification of Data Adapter about formData change.
| Method | POST |
| Resource URI | /api/operation/formdata/change |
The list of expected status codes:
| Code | Description |
|---|---|
| 200 | OK response - notification was successfully received |
| 500 | Server errors - provide error details in the message, this is only for unexpected errors |
- Headers:
Content-Type: application/json
{
"requestObject": {
"userId": "roman",
"operationContext": {
"id": "38511d38-f4de-4e50-a9ab-2d176d6a8cd4",
"name": "authorize_payment",
"data": "A1*A100CZK*Q238400856/0300**D20170629*NUtility Bill Payment - 05/2017",
"formData": {
"title": {
"id": "operation.title",
"message": "Confirm Payment"
},
"greeting": {
"id": "operation.greeting",
"message": "Hello,\nplease confirm following payment:"
},
"summary": {
"id": "operation.summary",
"message": "Hello, please confirm payment 100 CZK to account 238400856/0300."
},
"config": [],
"banners": [],
"parameters": [
{
"type": "AMOUNT",
"id": "operation.amount",
"label": "Amount",
"valueFormatType": "AMOUNT",
"formattedValue": "100.00 CZK",
"amount": 100,
"currency": "CZK",
"currencyId": "operation.currency"
},
{
"type": "KEY_VALUE",
"id": "operation.account",
"label": "To Account",
"valueFormatType": "ACCOUNT",
"formattedValue": "238400856/0300",
"value": "238400856/0300"
},
{
"type": "KEY_VALUE",
"id": "operation.dueDate",
"label": "Due Date",
"valueFormatType": "DATE",
"formattedValue": "Jun 29, 2017",
"value": "2017-06-29"
},
{
"type": "NOTE",
"id": "operation.note",
"label": "Note",
"valueFormatType": "TEXT",
"formattedValue": "Utility Bill Payment - 05/2017",
"note": "Utility Bill Payment - 05/2017"
}
],
"userInput": {
"operation.bankAccountChoice": "CZ4012340000000012345678"
}
}
},
"formDataChange": {
"type": "BANK_ACCOUNT_CHOICE",
"bankAccountId": "CZ4012340000000012345678"
}
}
}- Status Code:
200 - Headers:
Content-Type: application/json
{
"status": "OK",
"responseObject": null
}Notification of Data Adapter about operation change.
| Method | POST |
| Resource URI | /api/operation/change |
The list of expected status codes:
| Code | Description |
|---|---|
| 200 | OK response - notification was successfully received |
| 500 | Server errors - provide error details in the message, this is only for unexpected errors |
Possible operation changes are: DONE, CANCELED and FAILED.
- Headers:
Content-Type: application/json
{
"requestObject": {
"userId": "roman",
"operationContext": {
"id": "63046cce-731b-4a0d-89ef-5ff18c07e1d9",
"name": "authorize_payment",
"data": "A1*A100CZK*Q238400856/0300**D20170629*NUtility Bill Payment - 05/2017",
"formData": {
"title": {
"id": "operation.title",
"message": null
},
"greeting": {
"id": "operation.greeting",
"message": null
},
"summary": {
"id": "operation.summary",
"message": null
},
"config": [],
"banners": [],
"parameters": [
{
"type": "AMOUNT",
"id": "operation.amount",
"label": null,
"valueFormatType": "AMOUNT",
"formattedValue": null,
"amount": 100,
"currency": "CZK",
"currencyId": "operation.currency"
},
{
"type": "KEY_VALUE",
"id": "operation.account",
"label": null,
"valueFormatType": "ACCOUNT",
"formattedValue": null,
"value": "238400856/0300"
},
{
"type": "KEY_VALUE",
"id": "operation.dueDate",
"label": null,
"valueFormatType": "DATE",
"formattedValue": null,
"value": "2017-06-29"
},
{
"type": "NOTE",
"id": "operation.note",
"label": null,
"valueFormatType": "TEXT",
"formattedValue": null,
"note": "Utility Bill Payment - 05/2017"
}
],
"userInput": {
"operation.bankAccountChoice": "CZ4012340000000012345678",
"operation.bankAccountChoice.disabled": "true"
}
}
},
"operationChange": "DONE"
}
}- Status Code:
200 - Headers:
Content-Type: application/json
{
"status": "OK",
"responseObject": null
}| Method | POST |
| Resource URI | /api/auth/sms/create |
The list of expected status codes:
| Code | Description |
|---|---|
| 200 | OK response - SMS message has been successfully created |
| 400 | Invalid request - the request validation failed |
| 500 | Server errors - provide error details in the message, this is only for unexpected errors |
- Headers:
Content-Type: application/json
{
"requestObject": {
"userId": "roman",
"operationContext": {
"id": "817db0c4-2d07-4ab4-86b3-b94ba10cd5b8",
"name": "authorize_payment",
"data": "A1*A100CZK*Q238400856/0300**D20170629*NUtility Bill Payment - 05/2017",
"formData": {
"title": {
"id": "operation.title",
"message": "Confirm Payment"
},
"greeting": {
"id": "operation.greeting",
"message": "Hello,\nplease confirm following payment:"
},
"summary": {
"id": "operation.summary",
"message": "Hello, please confirm payment 100 CZK to account 238400856/0300."
},
"config": [],
"banners": [],
"parameters": [
{
"type": "AMOUNT",
"id": "operation.amount",
"label": "Amount",
"valueFormatType": "AMOUNT",
"formattedValue": "100.00 CZK",
"amount": 100,
"currency": "CZK",
"currencyId": "operation.currency"
},
{
"type": "KEY_VALUE",
"id": "operation.account",
"label": "To Account",
"valueFormatType": "ACCOUNT",
"formattedValue": "238400856/0300",
"value": "238400856/0300"
},
{
"type": "KEY_VALUE",
"id": "operation.dueDate",
"label": "Due Date",
"valueFormatType": "DATE",
"formattedValue": "Jun 29, 2017",
"value": "2017-06-29"
},
{
"type": "NOTE",
"id": "operation.note",
"label": "Note",
"valueFormatType": "TEXT",
"formattedValue": "Utility Bill Payment - 05/2017",
"note": "Utility Bill Payment - 05/2017"
}
],
"userInput": {
"operation.bankAccountChoice": "CZ4012340000000012345678",
"operation.bankAccountChoice.disabled": "true"
}
}
},
"lang": "en"
}
}- Status Code:
200 - Headers:
Content-Type: application/json
{
"status": "OK",
"responseObject": {
"messageId": "884de880-925d-47a9-8ff9-1954bf990de1"
}
}| Method | POST |
| Resource URI | /api/auth/sms/verify |
The list of expected status codes:
| Code | Description |
|---|---|
| 200 | OK response - SMS authorization code has been successfully verified |
| 400 | Invalid request - the request validation failed |
| 401 | Unauthorized - the SMS authorization code is invalid |
| 500 | Server errors - provide error details in the message, this is only for unexpected errors |
- Headers:
Content-Type: application/json
{
"requestObject": {
"messageId": "884de880-925d-47a9-8ff9-1954bf990de1",
"authorizationCode": "26415730",
"operationContext": {
"id": "817db0c4-2d07-4ab4-86b3-b94ba10cd5b8",
"name": "authorize_payment",
"data": "A1*A100CZK*Q238400856/0300**D20170629*NUtility Bill Payment - 05/2017",
"formData": {
"title": {
"id": "operation.title",
"message": "Confirm Payment"
},
"greeting": {
"id": "operation.greeting",
"message": "Hello,\nplease confirm following payment:"
},
"summary": {
"id": "operation.summary",
"message": "Hello, please confirm payment 100 CZK to account 238400856/0300."
},
"config": [],
"banners": [],
"parameters": [
{
"type": "AMOUNT",
"id": "operation.amount",
"label": "Amount",
"valueFormatType": "AMOUNT",
"formattedValue": "100.00 CZK",
"amount": 100,
"currency": "CZK",
"currencyId": "operation.currency"
},
{
"type": "KEY_VALUE",
"id": "operation.account",
"label": "To Account",
"valueFormatType": "ACCOUNT",
"formattedValue": "238400856/0300",
"value": "238400856/0300"
},
{
"type": "KEY_VALUE",
"id": "operation.dueDate",
"label": "Due Date",
"valueFormatType": "DATE",
"formattedValue": "Jun 29, 2017",
"value": "2017-06-29"
},
{
"type": "NOTE",
"id": "operation.note",
"label": "Note",
"valueFormatType": "TEXT",
"formattedValue": "Utility Bill Payment - 05/2017",
"note": "Utility Bill Payment - 05/2017"
}
],
"userInput": {
"operation.bankAccountChoice": "CZ4012340000000012345678",
"operation.bankAccountChoice.disabled": "true"
}
}
}
}
}- Status Code:
200 - Headers:
Content-Type: application/json
{
"status": "OK",
"responseObject": null
}Overview
Applications
- Web Flow Server
- Next Step Server
- Data Adapter
- Mobile Token
- PowerAuth Server
- PowerAuth Admin
- PowerAuth Push Server
REST APIs
- NextStep Server REST API Reference
- Data Adapter REST API Reference
- Web Flow REST API Reference
- Mobile Push Registration API
- Mobile Token REST API Reference
Deployment
Customizing Web Flow
- Customizing Web Flow Appearance
- Implementing Data Adapter Interface
- Web Flow Configuration
- Configuring Next Step Definitions
- Customizing Operation Form Data
- Mobile Token Configuration
Technical Notes
Development
Releases